This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft File: QnbajwSHyFCAm0qYcoysIXKycD0.mft (raw, json) Hash identifier: VS+18SpUy43C6axITxc8eox6IaLG3TxCXkWolx74pU8= Subject key identifier: B2:16:F0:FD:CD:F9:3D:A8:46:86:A6:CF:FF:06:2D:56:AB:04:52:92 Authority key identifier: 42:76:DA:8F:04:87:C8:50:80:9B:4A:98:72:8C:AC:21:72:B2:70:3D Certificate issuer: /CN=4276da8f0487c850809b4a98728cac2172b2703d Certificate serial: 019AF12DE9E66D188E85245B009CE7D290BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 01:01:49 +0000 Manifest this update: Sat 06 Dec 2025 01:01:49 +0000 Manifest next update: Sun 07 Dec 2025 01:01:49 +0000 Files and hashes: 1: QnbajwSHyFCAm0qYcoysIXKycD0.crl (hash: lH+96zHEHlaam6YXJ4yDZMTR94mT7vEVg1WdRVqu3hE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:e9:e6:6d:18:8e:85:24:5b:00:9c:e7:d2:90:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4276da8f0487c850809b4a98728cac2172b2703d Validity Not Before: Dec 6 01:01:49 2025 GMT Not After : Dec 7 01:01:49 2025 GMT Subject: CN=b216f0fdcdf93da84686a6cfff062d56ab045292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:62:d9:6a:c3:b4:ba:a7:0b:5d:eb:8d:fe:31: bd:52:91:a4:35:30:4d:ad:e8:b1:b4:6c:03:37:b0: 0d:c4:f4:89:47:ac:33:fc:fd:dc:9f:7c:be:6a:72: 3d:ce:78:50:66:31:18:a7:13:aa:1c:8b:2c:7a:81: ca:d0:90:d4:d1:6d:2f:54:bb:09:cc:37:fa:1b:86: 9d:8c:55:27:bb:c8:b2:e6:6b:25:17:1e:1c:65:54: 04:23:b7:7c:58:9d:77:d1:0c:12:16:25:65:54:1e: 94:23:57:a0:c4:ff:3b:da:03:c7:0f:5a:4c:d9:94: 2e:dc:5b:c6:9f:a8:ef:b1:83:df:8f:5b:23:36:9c: f2:bb:1c:fc:38:68:73:81:06:5f:45:85:cd:27:ea: 69:42:d3:8e:55:42:51:42:e5:dc:05:ad:70:24:6d: a1:b8:22:d8:26:ae:12:fd:21:74:44:94:b7:b9:6b: 3e:5b:13:a1:6c:17:43:c3:48:d0:00:cf:37:a9:3e: ee:95:e6:39:36:1c:f3:e4:d5:c9:68:33:01:31:a6: fd:a2:26:60:65:d8:5e:ad:10:6e:7b:4d:d6:a3:25: 94:fc:7e:82:18:d2:d9:9d:19:f8:0f:70:b6:cc:1e: d7:1f:5e:06:13:e3:53:b6:a6:1e:78:21:20:ff:50: 61:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:16:F0:FD:CD:F9:3D:A8:46:86:A6:CF:FF:06:2D:56:AB:04:52:92 X509v3 Authority Key Identifier: keyid:42:76:DA:8F:04:87:C8:50:80:9B:4A:98:72:8C:AC:21:72:B2:70:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:fc:d1:a6:04:92:03:a8:c4:65:d4:db:c8:81:cd:89:ca:ba: cb:ab:c7:ff:ec:f7:68:bb:fb:2d:f9:11:c9:7b:31:86:31:f1: 93:7d:0b:c7:da:a4:8d:88:9f:9f:41:8f:57:91:ba:ba:ab:b0: d6:c8:92:bf:24:fb:e6:0b:03:0a:5d:26:03:0b:d7:52:30:11: d8:6e:dd:58:e0:36:a5:72:fb:2d:26:88:e9:d3:50:c0:a2:ba: 46:d3:eb:03:24:5e:a3:f2:85:7e:44:67:e7:08:14:ba:37:ac: a8:cf:5b:6b:24:c1:5a:92:02:d7:4a:06:e7:a9:55:4a:1b:21: b4:42:3a:f2:13:98:9a:88:67:ea:29:eb:39:c7:8f:ce:cd:23: 4c:c2:9f:20:95:4d:73:e1:43:7a:3f:bf:e9:f2:90:2d:94:9f: 5f:17:dd:3d:ca:eb:b9:ce:cf:49:56:34:e5:9e:94:c1:37:4f: aa:6c:65:f7:fd:71:f2:26:5e:bf:c8:e5:2d:94:7f:14:75:17: 7e:ef:cf:bf:cc:fb:ed:42:e1:d7:fe:e6:c6:9f:a3:d9:3f:43: 41:ec:12:e7:58:ad:71:60:52:c1:03:35:1e:39:68:aa:ab:5d: 4a:f8:73:ee:6e:d5:52:3d:b1:fc:63:ab:e2:94:b8:67:3d:c4: ac:18:58:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLenmbRiOhSRbAJzn0pC9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNzZkYThmMDQ4N2M4NTA4MDliNGE5ODcyOGNhYzIxNzJi MjcwM2QwHhcNMjUxMjA2MDEwMTQ5WhcNMjUxMjA3MDEwMTQ5WjAzMTEwLwYDVQQD EyhiMjE2ZjBmZGNkZjkzZGE4NDY4NmE2Y2ZmZjA2MmQ1NmFiMDQ1MjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWLZasO0uqcLXeuN/jG9UpGkNTBN reixtGwDN7ANxPSJR6wz/P3cn3y+anI9znhQZjEYpxOqHIsseoHK0JDU0W0vVLsJ zDf6G4adjFUnu8iy5mslFx4cZVQEI7d8WJ130QwSFiVlVB6UI1egxP872gPHD1pM 2ZQu3FvGn6jvsYPfj1sjNpzyuxz8OGhzgQZfRYXNJ+ppQtOOVUJRQuXcBa1wJG2h uCLYJq4S/SF0RJS3uWs+WxOhbBdDw0jQAM83qT7uleY5Nhzz5NXJaDMBMab9oiZg ZdherRBue03WoyWU/H6CGNLZnRn4D3C2zB7XH14GE+NTtqYeeCEg/1BhFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLIW8P3N+T2oRoamz/8GLVarBFKSMB8GA1UdIwQY MBaAFEJ22o8Eh8hQgJtKmHKMrCFysnA9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW5iYWp3U0h5RkNBbTBxWWNveXNJWEt5Y0QwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9lYTEwNzItZjMyNi00ZTUxLWFkZjEt YmE5YjBmYTFiN2EyLzEvUW5iYWp3U0h5RkNBbTBxWWNveXNJWEt5Y0QwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9lYTEwNzItZjMyNi00ZTUxLWFkZjEtYmE5YjBmYTFiN2Ey LzEvUW5iYWp3U0h5RkNBbTBxWWNveXNJWEt5Y0QwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMvzRpgSS A6jEZdTbyIHNicq6y6vH/+z3aLv7LfkRyXsxhjHxk30Lx9qkjYifn0GPV5G6uquw 1siSvyT75gsDCl0mAwvXUjAR2G7dWOA2pXL7LSaI6dNQwKK6RtPrAyReo/KFfkRn 5wgUujesqM9bayTBWpIC10oG56lVShshtEI68hOYmohn6inrOcePzs0jTMKfIJVN c+FDej+/6fKQLZSfXxfdPcrruc7PSVY05Z6UwTdPqmxl9/1x8iZev8jlLZR/FHUX fu/Pv8z77ULh1/7mxp+j2T9DQewS51itcWBSwQM1HjloqqtdSvhz7m7VUj2x/GOr 4pS4Zz3ErBhYLw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:57:26 2025 by rpki-client